From owner-freebsd-questions@FreeBSD.ORG Thu Jan 31 09:35:29 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7FBFB16A418 for ; Thu, 31 Jan 2008 09:35:29 +0000 (UTC) (envelope-from crapsh@monkeybrains.net) Received: from ape.monkeybrains.net (ape.monkeybrains.net [208.69.40.11]) by mx1.freebsd.org (Postfix) with ESMTP id 62F1E13C458 for ; Thu, 31 Jan 2008 09:35:29 +0000 (UTC) (envelope-from crapsh@monkeybrains.net) Received: from monchichi.monkeybrains.net (adsl-75-55-220-44.dsl.pltn13.sbcglobal.net [75.55.220.44]) (authenticated bits=0) by ape.monkeybrains.net (8.14.1/8.14.1) with ESMTP id m0V9ZSdV099629 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Thu, 31 Jan 2008 01:35:29 -0800 (PST) (envelope-from crapsh@monkeybrains.net) Message-ID: <47A1967B.1000400@monkeybrains.net> Date: Thu, 31 Jan 2008 01:35:55 -0800 From: Rudy User-Agent: Thunderbird 2.0.0.9 (X11/20071122) MIME-Version: 1.0 To: freebsd-questions Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV version 0.92, clamav-milter version 0.92 on pita.monkeybrains.net X-Virus-Status: Clean Subject: Can I run ntpd in a jail? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 31 Jan 2008 09:35:29 -0000 Will this work? /usr/sbin/jail /var/chroot/ntp ntp.monkeybrains.net 10.10.10.10 \ /usr/sbin/ntpd -c /etc/ntp.conf -p /var/run/ntpd.pid Can ntpd update the system clock from within a jail? Here is the layout of my jail # find /var/chroot/ntp/ /var/chroot/ntp/ /var/chroot/ntp/lib /var/chroot/ntp/lib/libm.so.5 /var/chroot/ntp/lib/libmd.so.4 /var/chroot/ntp/lib/libcrypto.so.5 /var/chroot/ntp/lib/libc.so.7 /var/chroot/ntp/usr /var/chroot/ntp/usr/sbin /var/chroot/ntp/usr/sbin/ntpd /var/chroot/ntp/libexec /var/chroot/ntp/libexec/ld-elf.so.1 /var/chroot/ntp/etc /var/chroot/ntp/etc/ntp.conf /var/chroot/ntp/var /var/chroot/ntp/var/run /var/chroot/ntp/var/run/ntpd.pid # sockstat | grep 123 root ntpd 42707 3 udp4 10.10.10.10:123 *:* I ran it for a couple of days, and the clock was off by 2 seconds... # /var/chroot/ntp/etc/ntp.conf server clock.via.net server clock.isc.org driftfile /etc/ntp.drift - Rudy